SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 79b1d8166a5cc7fa8db696b6a3b8da53a84cb066.
Database Entry
| SHA1 Fingerprint: | 79b1d8166a5cc7fa8db696b6a3b8da53a84cb066 |
|---|---|
| Certificate Common Name (CN): | C=AU, ST=Some-State, O=Internet Widgits Pty Ltd |
| Issuer Distinguished Name (DN): | C=AU, ST=Some-State, O=Internet Widgits Pty Ltd |
| TLS Version: | TLS 1.2 |
| First seen: | 2015-11-07 20:18:12 UTC |
| Last seen: | 2015-11-17 13:05:10 UTC |
| Status: | Blacklisted |
| Listing reason: | Shifu C&C |
| Listing date: | 2015-11-09 15:31:57 |
| Malware samples: | 4 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2015-11-17 13:05:10 | 5af66a00733254e93bc6c499eff9cbc1 | n/a | Shifu | 49.50.66.60:443 |
| 2015-11-17 13:05:10 | 5af66a00733254e93bc6c499eff9cbc1 | n/a | Shifu | 49.50.66.60:443 |
| 2015-11-17 07:50:36 | 483348fcaaff01fb06aef763e389a931 | n/a | Shifu | 49.50.66.60:443 |
| 2015-11-17 07:50:36 | 483348fcaaff01fb06aef763e389a931 | n/a | Shifu | 49.50.66.60:443 |
| 2015-11-12 18:43:08 | c1265df4670810b216f84e7f807e3954 | n/a | Shifu | 49.50.66.60:443 |
| 2015-11-12 18:43:08 | c1265df4670810b216f84e7f807e3954 | n/a | Shifu | 49.50.66.60:443 |
| 2015-11-07 20:18:12 | 8650f07d704a077459e713095cb29474 |  26/54 (48.15%)
| Shifu | 49.50.66.60:443 |
| 2015-11-07 20:18:12 | 8650f07d704a077459e713095cb29474 | 26/54 (48.15%)
| Shifu | 49.50.66.60:443 |
# of entries: 8 (max: 100)